Mercy Community is committed to ensuring everybody’s privacy rights are upheld. The Privacy Act 1988 gives guidance as to how MC needs to do this, through the Australian Privacy Principles.
What is personal information and why do we need it?
Personal information is any information or opinion, recorded in written/material form or not, about an individual who can be reasonably identified from the information or opinion.
Collection of information is limited to only the information that is necessary for our activities. Given the nature of the services we provide, we may collect personal and sensitive information about individuals from several sources. We ensure that robust and accountable documentation is available regarding the collection of information, ensuring information that is sought and used is relevant to the organisation’s business and is appropriately managed.
What do we do with your personal information?
When we provide services to you, we will record relevant information that’s important for the services we provide for you.
So that we can do our best to support you, we might need to share your personal information to the extent permitted by law, with other agencies, guardians, families or government departments. We’ll make sure you know about, and consent to, us sharing this information– unless it’s not safe or reasonable to do so.
Sometimes there is particular information we need to obtain to be able to provide a service to you. If a staff member requests information that you don’t think they need to know, talk to the worker about your concerns. They will listen to you and clarify why they need the information.
However, we may be unable to provide services unless we have all the information we need.
How do we store your personal information?
Mercy Community is committed to keeping secure the personal information that is provided to us. Mercy Community takes all reasonable steps to ensure that the personal information held is protected from misuse, interference, loss, unauthorised access, modification or disclosure. We will not use or disclose sensitive information about an individual for the purposes of direct marketing, unless the individual has provided consent.
Mercy Community undertakes to ensure that only those who work directly with you, or have responsibility for the people working with you, have access to your information. Sometimes our support service teams, such as Information Technology or our Quality Improvement team, will have access to your information. Every employee, volunteer, contractor, sub-contractor and consultant signs a privacy agreement when they start with us, requiring them to keep any person we support or organisational information private and confidential. If you want to know more about how your information is being stored, talk to a staff member who can explain further.
How can you correct/update your personal information?
If there are changes to your personal information, or you become aware that the information we have is not correct, speak to a staff member or contact us and ask us to change this.
Response to a data breach
A data breach occurs when personal information is lost or subjected to unauthorised access, modification, use or disclosure, or other misuse or interference. All staff are responsible for reporting any actual or suspected data breach to the Privacy Officer. We respond to any actual or suspected data breach in accordance with legislation.
You have a right to your personal information and you can access it by following the steps below:
1. Prepare a written request. There is a Mercy Community Form– Request for Personal Information you can use for this. To get a copy of this form, speak to a staff member or call our Privacy Officer on (07) 3866 4160. If you would prefer not to fill out a form, we will need the following information from you:
You can ask someone to help you with this if you like.
2. Send this request into the MC Privacy Officer, via:
Mail: ATTN: Privacy Officer
PO Box 508
Lutwyche QLD 4030